Help / FAQ

How do I Keep my WordPress Secure?


*"WordPress was used by more than 23.3% of the top 10 million websites as of January 2015. WordPress is the most popular blogging system in use on the Web, at more than 60 million websites"

*"Over 409 million people view more than 17.8 billion pages each month."
"Users produce about 49.8 million new posts and 61.5 million new comments each month."

*When a single exploit/vulnerability is found in wordpress, thousands if not millions of sites are no longer secure.

So how do I keep my site secure?

Making your site secure enough so 'kiddie' hackers can't gain access is pretty simple, just follow the below steps and most hackers won't bother with your site, the premade hack scripts won't work.

1) Change your username from "admin" to something more secure.
2) Update your wordpress user privileges. Make sure only people who really need administrator have it, not everyone does.
3) Remove any old wordpress users eg the designer you no longer need.
4) Make sure all administrator are updated to a strong password incluing numbers, letters and symbols. Changing your password often is also a good idea (if you can remember what you change it to)
5) Password protect the /wp-admin/ folder. You can do this from within your cPanel, if you need help with this just contact us [contact us here]
6) Use a plugin to restrict login attempts. These are freely available from the Wordpress site
7) Wordpress is not an install once and forget. Keep wordpress updated. Check for security updateds monthly, if not weekly. Try keep your wordpress updated to the latest version, 2 weeks after it comes out, by then they have fixed any problems with the new version and your plugins/themes should have been updated/compatible.

Tags: Wordpress, Secure, update, wordpress login